Re: npf on a router: configuration issues

To: netbsd-users%netbsd.org@localhost
Subject: Re: npf on a router: configuration issues
From: Christoph Badura <bad%bsd.de@localhost>
Date: Thu, 10 Apr 2025 15:02:42 +0200

On Wed, Apr 09, 2025 at 06:02:09AM -0000, Michael van Elst wrote:
> And then we have a "fast forward" logic in the ethernet
> and ppp code when the kernel is compiled with the GATEWAY
> option and net.inet.ip.maxflows > 0. If I understand the
> code correctly, this will bypass the IP layer and IP filters
> for packets forwarded on a known IP flow.

I guess that breaks NAT for the "fast forward" flows then?
The NPF documentation says the "fast forward" path isn't handled.

--chris

References:
- npf on a router: configuration issues
  - From: Greg Troxel
- Re: npf on a router: configuration issues
  - From: Christoph Badura
- Re: npf on a router: configuration issues
  - From: Michael van Elst

Prev by Date: Re: ADB and MTP not working for Android phone on NetBSD
Next by Date: Accessing Android phone's files through MTP
Previous by Thread: Re: npf on a router: configuration issues
Next by Thread: Re: npf on a router: configuration issues
Indexes:

Home | Main Index | Thread Index | Old Index